Vulnerability Details CVE-2017-1182
IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) attacker to execute arbitrary commands on the system, when default client-server default communications, HTTP, are being used. IBM X-Force ID: 123493.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.087
EPSS Ranking 92.1%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.4
References
- http://www.ibm.com/support/docview.wss?uid=swg22003402
- http://www.securitytracker.com/id/1038913
- https://exchange.xforce.ibmcloud.com/vulnerabilities/123493
- http://www.ibm.com/support/docview.wss?uid=swg22003402
- http://www.securitytracker.com/id/1038913
- https://exchange.xforce.ibmcloud.com/vulnerabilities/123493
Products affected by CVE-2017-1182
-
cpe:2.3:a:ibm:tivoli_monitoring:6.2.2.9
-
cpe:2.3:a:ibm:tivoli_monitoring:6.2.3.5
-
cpe:2.3:a:ibm:tivoli_monitoring:6.3.0.7